SAS Security Update for SAS® 9.4M8 (TS1M8)

View all security bulletins

Reference Name: SAS Security Update for SAS® 9.4M8 (TS1M8)
Severity: Critical

History

1-23-2026 – New release available
10-01-2025 – New release available
7-07-2025 – New release available
9-27-2024 – New release available
6-28-2024 – New release available
12-14-2023 – New release available
10-2-2023 – New release available
6-30-2023 – SAS security update available

Description

The SAS security update for SAS 9.4M8 is a software update that addresses multiple third-party security vulnerabilities within the SAS^® product suite. Security updates are cumulative, so you need to apply only the most recent update.

Solution

See SAS Security Updates and Hot Fixes to access the download and documentation for the SAS security update for SAS 9.4M8.

Vulnerabilities Addressed in the 1-23-2026 Release

Apache Tika

Apache Geode

Apache Tomcat

commons_lang

CVE-2025-48924

OWASP-esapi

CVE-2025-5878

POI

CVE-2025-31672

net.sf.ehcache:ehcache

netty

org.apache.tiles:tiles-core

CVE-2023-49735

org.springframework

Vulnerabilities Addressed in the 10-01-2025 Release

Vulnerabilities Addressed in the 9-27-2024 Release

Vulnerabilities Addressed in the 6-28-2024 Release

Vulnerabilities Addressed in the 12-14-2023 Release

Vulnerabilities Addressed in the 6-30-2023 Release

CVE-2023-26049
CVE-2023-26048
CVE-2023-24998
CVE-2022-42004
CVE-2022-42003
CVE-2022-41966
CVE-2022-41854
CVE-2022-40664
CVE-2022-40152
CVE-2022-40151
CVE-2022-38752
CVE-2022-38751
CVE-2022-38750
CVE-2022-38749
CVE-2022-37023
CVE-2022-37022
CVE-2022-37021
CVE-2022-34870
CVE-2022-32532
CVE-2022-25857
CVE-2022-1471
CVE-2021-46877
CVE-2021-44531
CVE-2021-43859
CVE-2021-41303
CVE-2021-34797
CVE-2021-34428
CVE-2020-36518
CVE-2020-27223
CVE-2020-27218
CVE-2020-25649
CVE-2020-2934
CVE-2020-2933
CVE-2020-2875
CVE-2019-17638
CVE-2019-17632
CVE-2019-10173
CVE-2019-2692
CVE-2019-0222
CVE-2018-11775
CVE-2017-18640
CVE-2017-7957
CVE-2016-1000031
CVE-2016-6810
CVE-2016-3674
CVE-2016-3092
CVE-2016-3088
CVE-2016-0782
CVE-2016-0734
CVE-2015-7559
CVE-2015-6524
CVE-2015-5254
CVE-2015-1830
CVE-2014-8110
CVE-2014-3612
CVE-2014-3600
CVE-2014-3576
CVE-2014-0050
CVE-2013-7285
CVE-2013-2186
CVE-2013-1879
CVE-2013-0248
CVE-2012-6092

SAS Security Update for SAS® 9.4M8 (TS1M8)

View all security bulletins

History

Description

Solution

Security Bulletins

View other security bulletins, published as part of our formal PSIRT process.

Technical Support

Get world-class technical support via our support track system.

Samples & SAS Notes

Search our extensive Knowledge Base for code samples and SAS Notes.

Follow Us

What is...